/ Java Zone
Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

Per Client Cookie Handling With Jersey

DZone's Guide to

Per Client Cookie Handling With Jersey

by
·
Feb. 24, 15 · Java Zone ·
Free Resource

Comment (1)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Download Microservices for Java Developers: A hands-on introduction to frameworks and containers. Brought to you in partnership with Red Hat.

A lot of REST services will use cookies as part of the authentication / authorisation scheme. This is a problem because by default the old Jersey client will use the singletonCookieHandler.getDefault which is most cases will be null and if not null will not likely work in a multithreaded server environment. (This is because in the background the default Jersey client will use URL.openConnection)

Now you can work around this by using the Apache HTTP Client adapter for Jersey; but this is not always available. So if you want to use the Jersey client with cookies in a server environment you need to do a little bit of reflection to ensure you use your own private cookie jar.

    final CookieHandler ch = new CookieManager();
    
    Client client = new Client(new URLConnectionClientHandler(
       new HttpURLConnectionFactory() {

        @Override
        public HttpURLConnection getHttpURLConnection(URL uRL) throws IOException {
            HttpURLConnection connect = (HttpURLConnection) uRL.openConnection();

            try {
                Field cookieField = connect.getClass().getDeclaredField("cookieHandler");
                cookieField.setAccessible(true);
                MethodHandle mh = MethodHandles.lookup().unreflectSetter(cookieField);
                mh.bindTo(connect).invoke(ch);
            } catch (Throwable e) {
                e.printStackTrace();
            }

            return connect;
        }
    }));

This will only work if your environment is using the internal implementation ofsun.net.www.protocol.http.HttpURLConnection that comes with the JDK. This appears to be the case for modern versions of WLS.

For JAX-RS 2.0 you can do a similar change using Jersey 2.x specific ClientConfig classand HttpUrlConnectorProvider.

    final CookieHandler ch = new CookieManager();


    Client client =
        ClientBuilder.newClient(new ClientConfig().connectorProvider(new HttpUrlConnectorProvider().connectionFactory(new HttpUrlConnectorProvider.ConnectionFactory() {
            @Override
            public HttpURLConnection getConnection(URL uRL) throws IOException {
                HttpURLConnection connect = (HttpURLConnection) uRL.openConnection();

                try {
                    Field cookieField = connect.getClass().getDeclaredField("cookieHandler");
                    cookieField.setAccessible(true);
                    MethodHandle mh = MethodHandles.lookup().unreflectSetter(cookieField);
                    mh.bindTo(connect).invoke(ch);
                } catch (Throwable e) {
                    e.printStackTrace();
                }

                return connect;
            }
        })));






Download Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design. Brought to you in partnership with Red Hat

Like This Article? Read More From DZone

9 Common Mistakes to Avoid While Installing an SSL Certificate
An Overview of the Kafka Distributed Message System (Part 1)
Lessons from Scrum and Photography

Free DZone Refcard

Java Containerization
DOWNLOAD
Topics:

Comment (1)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Published at DZone with permission of

Opinions expressed by DZone contributors are their own.

Java Partner Resources

Deep insight into your code with IntelliJ IDEA.
Distribute microservices between the private and public clusters, yet maintain bi-directional connectivity
Free eBook: SCA Maturity Model - A Framework for Open Source Security and Compliance
Predictive Analytics + Big Data Quality: A Love Story
Java Ecosystem 2018 Infographic by JetBrains
Gateway to Data Driven Operation & Digital Transformation
Streamline and Automate Your Local Development Flow
jQuery UI and Auto-Complete Address Entry
Use this tool to look at the contents of GitHub and classify code based on the programming language used
Learn how to refactor a monolithic application to work your way toward a scalable and resilient microsystem.
Free tool: Scan Java, NuGet, and NPM packages for open source vulnerabilities
Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design

Java Partner Resources

Deep insight into your code with IntelliJ IDEA.
Distribute microservices between the private and public clusters, yet maintain bi-directional connectivity
Free eBook: SCA Maturity Model - A Framework for Open Source Security and Compliance
Predictive Analytics + Big Data Quality: A Love Story

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.linkDescription }}

{{ parent.urlSource.name }}
by {{ parent.authors[0].realName || parent.author}}
· {{ parent.articleDate | date:'MMM. dd, yyyy' }} {{ parent.linkDate | date:'MMM. dd, yyyy' }}
· {{ parent.portal.name }} Zone